$ rpki-client -vvf rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft File: kCs-s81I0JqgoQybLLKA0KDNLbo.mft (raw, json) Hash identifier: RiSbxS4puxfUM2VAYl+tMDqjJ07qpQ6A1+spS1DQlzA= Subject key identifier: 39:93:0E:B4:B1:96:E3:67:9D:79:04:3C:DD:6D:90:E0:A4:3D:D2:FB Authority key identifier: 90:2B:3E:B3:CD:48:D0:9A:A0:A1:0C:9B:2C:B2:80:D0:A0:CD:2D:BA Certificate issuer: /CN=A915A161/serialNumber=902B3EB3CD48D09AA0A10C9B2CB280D0A0CD2DBA Certificate serial: 103B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft Manifest number: 103B Signing time: Tue 04 Nov 2025 17:29:38 +0000 Manifest this update: Tue 04 Nov 2025 17:29:38 +0000 Manifest next update: Tue 11 Nov 2025 17:29:38 +0000 Files and hashes: 1: kCs-s81I0JqgoQybLLKA0KDNLbo.crl (hash: 6NHo7aevEKJrNQf+lfAtvnId1afZ8lXMSuVIY/vW2wM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.crl rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:29:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4155 (0x103b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A161, serialNumber=902B3EB3CD48D09AA0A10C9B2CB280D0A0CD2DBA Validity Not Before: Nov 4 17:29:38 2025 GMT Not After : Nov 11 17:29:38 2025 GMT Subject: CN=690a3802-d0f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:86:02:83:73:b7:60:96:8e:c7:90:59:13:a6: 32:87:42:5d:19:7a:52:4f:90:63:5a:c0:8f:5e:b8: f3:35:24:26:0e:13:bc:05:cf:1b:8b:a8:59:ae:6c: b0:d0:56:92:34:9c:ba:b4:99:e2:23:69:e7:6c:62: a3:d2:d1:58:2c:94:77:51:aa:fd:09:47:da:69:ca: fb:70:64:04:f8:94:13:3a:fd:a3:f6:c9:36:ef:13: dc:b9:fa:ba:dc:85:60:6e:d6:c8:38:2f:c1:8c:6e: 28:22:03:62:c9:1c:b7:de:8c:82:fa:98:38:53:e4: 88:f9:1e:fa:9a:10:5f:a3:1f:1e:e2:9e:85:e8:f7: ca:2b:91:e2:78:4d:83:91:e0:18:77:be:17:10:80: 3c:bb:19:d6:69:5e:f5:ce:6d:be:4e:50:be:21:ae: 56:7a:46:8a:69:f8:8b:15:40:8b:8d:0a:72:ab:6a: aa:38:61:69:58:8f:5b:d3:a4:87:5a:1b:93:0b:64: 06:4e:1d:5a:42:c7:56:bb:9f:b9:23:19:bc:c9:8a: 00:44:a6:69:66:5f:e7:b6:6b:b8:d4:9c:10:6e:7a: 10:8d:10:f1:58:81:be:4b:6b:99:9a:cc:f3:e7:0b: 66:20:0d:35:ee:4f:de:13:b0:d3:ea:fa:c9:be:94: f1:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:93:0E:B4:B1:96:E3:67:9D:79:04:3C:DD:6D:90:E0:A4:3D:D2:FB X509v3 Authority Key Identifier: keyid:90:2B:3E:B3:CD:48:D0:9A:A0:A1:0C:9B:2C:B2:80:D0:A0:CD:2D:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:db:fe:05:ea:b5:ca:28:b7:f1:f3:34:ef:e8:ae:02:02:7e: 0e:d0:12:aa:16:a3:55:48:17:02:60:42:66:aa:22:84:f7:4e: b6:db:90:0c:a5:52:d5:48:52:e8:0e:88:0c:d8:42:a5:2c:52: 79:09:75:a5:b0:bb:76:85:73:a1:2d:ad:5d:90:dd:c2:cd:f5: a5:6c:78:2b:9d:f0:d8:a4:a9:72:28:37:3c:66:7a:c7:ab:35: c5:1c:2c:8c:04:a9:8f:d6:c4:6b:06:7b:0f:0b:02:ba:ff:6a: 0e:c3:98:92:eb:10:ec:eb:0c:09:a3:c7:52:c6:54:a8:ee:18: 85:9e:ea:15:f2:67:fe:57:69:d3:9f:a1:a3:df:54:77:3e:f1: b4:34:2d:81:73:39:0b:56:52:b5:23:01:5b:54:95:50:d3:95: 8a:70:18:11:24:29:0e:56:46:97:0b:c3:33:6f:a4:ee:19:ae: d4:85:2b:f0:70:05:19:84:76:cf:ae:ae:b4:11:cc:b5:c2:15: ee:84:93:16:df:58:0b:07:e0:18:be:c7:a0:9d:83:cf:d5:86: e4:4d:cb:b6:41:ce:b7:2b:dc:1a:c6:40:55:03:e6:4b:5a:45: 4c:98:cf:ef:30:22:69:5c:68:79:47:67:0f:79:65:bf:c6:dd: 0f:cb:d9:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEDswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUExNjExMTAvBgNVBAUTKDkwMkIzRUIzQ0Q0OEQwOUFBMEExMEM5QjJDQjI4MEQw QTBDRDJEQkEwHhcNMjUxMTA0MTcyOTM4WhcNMjUxMTExMTcyOTM4WjAYMRYwFAYD VQQDEw02OTBhMzgwMi1kMGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArIYCg3O3YJaOx5BZE6Yyh0JdGXpST5BjWsCPXrjzNSQmDhO8Bc8bi6hZrmyw 0FaSNJy6tJniI2nnbGKj0tFYLJR3Uar9CUfaacr7cGQE+JQTOv2j9sk27xPcufq6 3IVgbtbIOC/BjG4oIgNiyRy33oyC+pg4U+SI+R76mhBfox8e4p6F6PfKK5HieE2D keAYd74XEIA8uxnWaV71zm2+TlC+Ia5WekaKafiLFUCLjQpyq2qqOGFpWI9b06SH WhuTC2QGTh1aQsdWu5+5Ixm8yYoARKZpZl/ntmu41JwQbnoQjRDxWIG+S2uZmszz 5wtmIA017k/eE7DT6vrJvpTxbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDmTDrSx luNnnXkEPN1tkOCkPdL7MB8GA1UdIwQYMBaAFJArPrPNSNCaoKEMmyyygNCgzS26 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTE2MS9CMDdCMkFCODRC MTAxMUU5QUFFM0VFNDNDNEY5QUUwMi9rQ3MtczgxSTBKcWdvUXliTExLQTBLRE5M Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tDcy1zODFJMEpxZ29ReWJMTEtBMEtETkxiby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTE2MS9CMDdCMkFCODRCMTAxMUU5QUFFM0VFNDNDNEY5QUUwMi9rQ3MtczgxSTBK cWdvUXliTExLQTBLRE5MYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN2/4F6rXKKLfx8zTv6K4CAn4O0BKqFqNVSBcCYEJmqiKE906225AM pVLVSFLoDogM2EKlLFJ5CXWlsLt2hXOhLa1dkN3CzfWlbHgrnfDYpKlyKDc8ZnrH qzXFHCyMBKmP1sRrBnsPCwK6/2oOw5iS6xDs6wwJo8dSxlSo7hiFnuoV8mf+V2nT n6Gj31R3PvG0NC2BczkLVlK1IwFbVJVQ05WKcBgRJCkOVkaXC8Mzb6TuGa7UhSvw cAUZhHbPrq60Ecy1whXuhJMW31gLB+AYvsegnYPP1YbkTcu2Qc63K9waxkBVA+ZL WkVMmM/vMCJpXGh5R2cPeWW/xt0Py9kq -----END CERTIFICATE-----Generated at Wed Nov 5 07:55:18 2025 by rpki-client